$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa File: 3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa (raw, json) Hash identifier: cw0igel95ohPhgul5xAvynTkRNKNXlYr6RQuchOVQaY= Subject key identifier: 98:99:7D:67:F9:AC:D6:8D:3B:9F:A1:63:4D:E1:61:C2:AD:2A:14:00 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 053279BC73398D527D88EE45C81AA66B50CA5B12 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa Signing time: Mon 01 Jul 2024 01:03:19 +0000 ROA not before: Mon 01 Jul 2024 00:58:19 +0000 ROA not after: Mon 30 Jun 2025 01:03:19 +0000 asID: 4800 IP address blocks: 123.231.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:32:79:bc:73:39:8d:52:7d:88:ee:45:c8:1a:a6:6b:50:ca:5b:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:19 2024 GMT Not After : Jun 30 01:03:19 2025 GMT Subject: CN=98997D67F9ACD68D3B9FA1634DE161C2AD2A1400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:ec:a8:37:98:81:fe:30:8f:a9:28:fc:75: ae:00:8c:13:4e:96:40:4f:52:a9:a4:87:3a:b3:76: ee:5a:94:13:f1:92:56:ac:a1:d9:6f:aa:1e:08:6a: c9:73:51:e0:10:bb:3e:48:ee:f6:21:f4:bb:5b:53: a7:1b:4e:c4:db:57:24:6c:31:85:39:a7:ae:79:5c: 66:4b:18:48:e6:26:1a:87:ad:1c:d5:95:75:a9:5c: 92:60:21:c7:ef:ea:b7:d6:4d:56:da:33:ec:86:af: 4b:b4:34:3f:19:65:2a:31:a0:50:22:ce:d2:eb:88: 6c:d0:62:d2:d3:8a:53:ce:40:1a:8c:07:f6:ba:e6: ed:da:c2:15:06:79:49:df:f0:c8:9d:d7:a6:a7:17: 9e:97:fa:86:c0:1e:b1:41:dd:a7:8e:7c:aa:1f:39: d8:a7:9f:20:4f:b9:66:c4:20:4a:40:cf:09:23:73: a7:61:5f:e2:40:b0:8d:1a:12:07:3c:ea:e1:4d:1c: 79:04:ba:3b:09:ad:8e:51:8b:f6:16:f1:2c:7f:aa: 8c:a7:c0:c7:45:3d:74:f6:17:17:2e:5a:1b:e1:64: 4d:1e:b2:67:b8:f4:01:66:60:47:c7:05:d7:ed:d1: 65:77:02:50:41:e7:35:f5:06:42:df:ef:8a:d6:ed: 91:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:99:7D:67:F9:AC:D6:8D:3B:9F:A1:63:4D:E1:61:C2:AD:2A:14:00 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.128.0/17 Signature Algorithm: sha256WithRSAEncryption 03:84:87:47:ec:ed:aa:57:ea:a8:25:c1:f9:6f:a5:c8:aa:ed: 02:af:b0:16:c2:f7:1f:18:7a:01:5a:27:8c:98:e8:1b:c8:07: 00:86:af:af:9e:4f:b4:00:b9:09:2b:4c:fc:50:8e:fc:ff:22: 36:c5:a1:08:c8:fc:26:b7:59:98:ec:02:06:60:ff:0c:50:83: 89:7a:73:a1:cb:bb:5c:46:35:3c:15:67:3a:de:c1:5e:c1:df: 7d:86:13:f1:2f:c0:77:91:65:3f:e0:a2:bc:77:a8:f3:b0:31: 60:11:b4:5d:b0:68:60:a8:91:61:08:52:cd:bd:2e:f5:d1:1d: 54:88:d2:14:2c:7a:98:7b:58:21:a3:22:01:9d:e3:9d:75:06: 9e:27:83:a6:5c:cb:97:24:d3:76:56:8d:54:62:cf:42:7c:3e: aa:7e:03:d7:b3:77:be:ac:ea:88:f4:7d:fa:fd:79:92:f5:e7: f3:52:b7:c7:6c:e7:5a:17:2f:0a:40:ce:67:d7:3e:29:49:a7: bb:a6:88:0b:2c:b7:4a:0b:7b:48:8f:36:bd:f5:3d:e2:e8:c7: 51:86:a7:b2:0e:df:3e:0c:65:b5:10:78:a8:ed:1b:91:73:b7: 6e:9f:38:ba:25:00:78:9e:39:62:4d:91:7f:45:b6:73:90:0b: dc:2d:78:8b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBTJ5vHM5jVJ9iO5FyBqma1DKWxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MTlaFw0yNTA2MzAwMTAzMTlaMDMxMTAvBgNV BAMTKDk4OTk3RDY3RjlBQ0Q2OEQzQjlGQTE2MzRERTE2MUMyQUQyQTE0MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz2+yoN5iB/jCPqSj8da4AjBNO lkBPUqmkhzqzdu5alBPxklasodlvqh4IaslzUeAQuz5I7vYh9LtbU6cbTsTbVyRs MYU5p655XGZLGEjmJhqHrRzVlXWpXJJgIcfv6rfWTVbaM+yGr0u0ND8ZZSoxoFAi ztLriGzQYtLTilPOQBqMB/a65u3awhUGeUnf8Mid16anF56X+obAHrFB3aeOfKof OdinnyBPuWbEIEpAzwkjc6dhX+JAsI0aEgc86uFNHHkEujsJrY5Ri/YW8Sx/qoyn wMdFPXT2FxcuWhvhZE0esme49AFmYEfHBdft0WV3AlBB5zX1BkLf74rW7ZFnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmJl9Z/ms1o07n6FjTeFhwq0qFAAwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTMyMzgyZTMwMmYz MTM3MmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3vngDANBgkqhkiG 9w0BAQsFAAOCAQEAA4SHR+ztqlfqqCXB+W+lyKrtAq+wFsL3Hxh6AVonjJjoG8gH AIavr55PtAC5CStM/FCO/P8iNsWhCMj8JrdZmOwCBmD/DFCDiXpzocu7XEY1PBVn Ot7BXsHffYYT8S/Ad5FlP+CivHeo87AxYBG0XbBoYKiRYQhSzb0u9dEdVIjSFCx6 mHtYIaMiAZ3jnXUGnieDplzLlyTTdlaNVGLPQnw+qn4D17N3vqzqiPR9+v15kvXn 81K3x2znWhcvCkDOZ9c+KUmnu6aICyy3Sgt7SI82vfU94ujHUYansg7fPgxltRB4 qO0bkXO3bp84uiUAeJ45Yk2Rf0W2c5AL3C14iw== -----END CERTIFICATE-----Generated at Sun Nov 24 13:13:45 2024 by rpki-client on console-fra.rpki-client.org